您现在访问的是微软AZURE全球版技术文档网站,若需要访问由世纪互联运营的MICROSOFT AZURE中国区技术文档网站,请访问 https://docs.azure.cn.

控制云的方法Govern methodology for the cloud

采用云是一个过程,而非终点。Adopting the cloud is a journey, not a destination. 在这个过程中,设定有明确的里程碑和有形的业务效益。Along the way, there are clear milestones and tangible business benefits. 当公司开始旅程时,云采用的最终状态是未知的。The final state of cloud adoption is unknown when a company begins the journey. 云治理创建了防范措施,确保公司在整个过程中保持安全。Cloud governance creates guardrails that keep the company on a safe path throughout the journey.

云采用框架提供了一些调控指南,这些指南介绍了基于真实客户体验的虚构公司的经验。The Cloud Adoption Framework provides governance guides that describe the experiences of fictional companies that are based on the experiences of real customers. 每个指南都完整展示了客户在云采用中的各个治理方面。Each guide follows the customer through the governance aspects of their cloud adoption.

构想最终状态Envision an end state

没有目标的旅程只是盲目漫游。A journey without a target destination is just wandering. 在采取第一步之前,请务必确定结束状态的大致愿景。It's important to establish a rough vision of the end state before taking the first step. 下面的信息图提供了最终状态的参考框架。The following infographic provides a frame of reference for the end state. 这并不是您的起点,但它会显示您的潜在目标。It's not your starting point, but it shows your potential destination.

云采用框架治理模型信息图

云采用治理模型确定了过程中的重要关键区域。The Cloud Adoption Framework governance model identifies key areas of importance during the journey. 由于采用了更多的云服务,每个区域都涉及公司必须解决的不同类型的风险。Each area relates to different types of risks the company must address as it adopts more cloud services. 在此框架中,可以通过治理指南确定云治理团队所需的操作。Within this framework, the governance guide identifies required actions for the cloud governance team. 在此过程中,还将进一步描述云采用框架治理模型的每个原则。Along the way, each principle of the Cloud Adoption Framework governance model is described further. 从广义上说,这些原则包括:Broadly, these include:

公司策略: 企业策略促进云监管。Corporate policies: Corporate policies drive cloud governance. 治理指南侧重于公司策略的特定方面:The governance guide focuses on specific aspects of corporate policy:

  • 业务风险: 确定和理解企业风险。Business risks: Identifying and understanding corporate risks.
  • 策略和符合性: 将风险转换为支持任何符合性要求的策略声明。Policy and compliance: Converting risks into policy statements that support any compliance requirements.
  • 进程: 确保遵守规定的策略。Processes: Ensuring adherence to the stated policies.

云管理的五个层面: 这些学科支持企业策略。Five Disciplines of Cloud Governance: These disciplines support the corporate policies. 每个规则可帮助公司避免潜在陷阱:Each discipline protects the company from potential pitfalls:

  • 成本管理规则Cost Management discipline
  • 安全基线规范Security Baseline discipline
  • 资源一致性规范Resource Consistency discipline
  • 标识基线规范Identity Baseline discipline
  • 部署加速训练Deployment Acceleration discipline

从根本上讲,公司策略是一个早期预警系统,可用来发现潜在问题。Essentially, corporate policies serve as the early warning system to detect potential problems. 这些规则有助于公司管理风险,并建立防范措施。The disciplines help the company manage risks and create guardrails.

发展到最终状态Grow to the end state

由于治理需求将在整个云采用过程中不断变化,因此,需要一种不同的治理方法。Because governance requirements will change throughout the cloud adoption journey, a different approach to governance is required. 公司不能再坐等小团队在每条高速公路上建造护栏和画好路线图,然后再迈出第一步。Companies can no longer wait for a small team to build guardrails and roadmaps on every highway before taking the first step. 应更快速顺利地生成业务结果。Business results are expected more quickly and smoothly. IT 治理还必须快速发展,并与业务需求保持同步,以便在云采用期间保持相关度,避免成为“影子 IT”。IT governance must also move quickly and keep pace with business demands to stay relevant during cloud adoption and avoid "shadow IT."

增量治理方法支持这些特征。An incremental governance approach empowers these traits. 增量治理依赖于一小组公司策略、流程和工具,以便为采用和治理建立基础。Incremental governance relies on a small set of corporate policies, processes, and tools to establish a foundation for adoption and governance. 该基础称为最小可行性产品 (MVP)。That foundation is called a minimum viable product (MVP). 通过建立 MVP,治理团队可在整个采用生命周期中快速地将治理付诸实施。An MVP allows the governance team to quickly incorporate governance into implementations throughout the adoption lifecycle. 在云采用过程中,可以在任何时候建立 MVP。An MVP can be established at any point during the cloud adoption process. 最佳做法是尽早采用 MVP。It's a good practice to adopt an MVP as early as possible.

快速响应变化中风险的功能可使云治理团队以新的方式参与进来。The ability to respond rapidly to changing risks empowers the cloud governance team to engage in new ways. 云治理团队可以“侦察员”身份加入云策略团队,可以在行动上领先于云采用团队,可以绘制路线并快速建立防范措施,以管理与采用计划相关的风险。The cloud governance team can join the cloud strategy team as scouts, moving ahead of the cloud adoption teams, plotting routes, and quickly establishing guardrails to manage risks associated with the adoption plans. 这些实时治理层称为“治理迭代”。These just-in-time governance layers are known as governance iterations. 使用这种方法,治理策略发展将领先于云采用团队一步。With this approach, governance strategy grows one step ahead of the cloud adoption teams.

下图显示了一个简单的治理 MVP 和三次治理迭代。The following diagram shows a simple governance MVP and three governance iterations. 在迭代过程中,定义了额外的公司策略来减少新的风险。During the iterations, additional corporate policies are defined to remediate new risks. 然后,部署加速规则在每个部署中应用这些更改。The Deployment Acceleration discipline then applies those changes across each deployment.

增量治理改进示例

备注

治理不是安全、网络、标识、财务、DevOps 或运维等关键职能部门的替代。Governance is not a replacement for key functions such as security, networking, identity, finance, DevOps, or operations. 在此过程中,将与来自每个职能团队的成员进行交互并依赖于这些成员。Along the way, there will be interactions with and dependencies on members from each function. 这些成员应纳入云治理团队中,以加速决策和操作。Those members should be included on the cloud governance team to accelerate decisions and actions.

后续步骤Next steps

了解如何使用云采用框架调控基准工具来评估转换旅程,并帮助识别在框架中定义的六个关键域之间的组织中的间隔。Learn to use the Cloud Adoption Framework governance benchmark tool to assess your transformation journey and help you identify gaps in your organization across six key domains as defined in the framework.